Wednesday, February 24, 2021
  • About Us
  • Contact Us
  • Deals & Coupons
  • Privacy Policy
  • Terms & Conditions
Cloud Host News
  • Home
  • Hosting
    NetApp Becomes Technology Partner of DHPA

    NetApp Becomes Technology Partner of DHPA

    Managed WordPress Hosting Provider DreamHost Partners with Lendio

    DreamHost, a Managed WordPress Hosting Provider Partners with Lendio

    The Events Calendar

    Liquid Web Acquires ‘The Events Calendar’ a Popular WordPress Plugin

    HostPapa acquires another Canadian web hosting company

    HostPapa acquires another Canadian web hosting company

    Web.com releases new lineup of Pro Services(Pro SEO and Pro Website)

    Web.com releases new lineup of Pro Services(Pro SEO and Pro Website)

    Loopia Picks EcoDataCenter From Sweden for Sustainable Data Center Services.

    Loopia Picks EcoDataCenter From Sweden for Sustainable Data Center Services.

    Trending Tags

    • Hosting
    • A2 Hosting
    • web hosting
    • Cloud Hosting
    • free hosting
    • DreamHost
  • Cloud
    Bitcoin Plummeted $8000 After Elon Musk's Concerns Over Rally

    Bitcoin Plummeted $8000 After Elon Musk’s Concerns Over Rally

    Red Hat's OpenShift Platform Released on IBM Power Virtual Servers

    Red Hat’s OpenShift Platform Released on IBM Power Virtual Servers

    Amazon Web Services (AWS) Expands into Adelaide, South Australia

    Amazon Web Services (AWS) Expands into Adelaide, South Australia

    Veeam Software Extends Google Cloud Partnership

    Veeam Backup for Google Cloud Platform: Veeam Software Extends Google Cloud Partnership

    Google Launches VM Manager, An Infrastructure Management Tools Suite

    Google Launches VM Manager, An Infrastructure Management Tools Suite

    SUSE Announced The Release of Longhorn 1.1

    SUSE Announced The Release of Longhorn 1.1

    Trending Tags

    • Cloud
    • Private Cloud Hosting
    • Google Cloud Platform
    • Cloud Hosting
    • Google Cloud
  • Network/Internet
    Brave Browser Becomes the First Browser to Integrate IPFS Protocol

    Brave Browser Becomes the First Browser to Integrate IPFS Protocol

    ICANN70 to be Held Online on 22-25 March

    ICANN70 to be Held Online on 22-25 March

    OneWeb Plans to Offer High-Speed Internet in India by Q2 2022

    OneWeb Plans to Offer High-Speed Internet in India by Q2 2022

    Cloudflare and Apple Team Up to Develop New Internet Protocol

    Cloudflare and Apple Team Up to Develop New Internet Protocol

    ZenFi Networks Extends Network Capabilities

    ZenFi Networks Extends Network Capabilities

    Spark and NNNCo agree to trans-Tasman IoT network sharing

    Spark and NNNCo agree to trans-Tasman IoT network sharing

    Trending Tags

    • network security
    • 5G Network
    • Network OS
    • 5G Network Solution
    • Dark Fiber Network
  • Security
    Subscribe to our newsletter for the latest security news right from the security and research industries.

    Microsoft Announced SolarWinds Hackers Downloaded Some Azure, Exchange Source Code

    Microsoft Azure and Canonical Ubuntu Linux Have a User Privacy Issue

    Microsoft Azure and Canonical Ubuntu Linux Have a User Privacy Issue

    Chrome Sync Feature Exploited

    Hackers May Use Malicious Chrome Sync Feature to Steal Your Data

    Google Fixes Zero-day Vulnerability in Chrome 88.0.4324.150

    Google Fixes Zero-day Vulnerability in Chrome 88.0.4324.150

    RiskIQ Releases a Tool That Can Create Phishing Pages In Real-Time

    RiskIQ Releases a Tool That Can Create Phishing Pages In Real-Time

    Microsoft Releases EDR Capabilities for Linux Server

    Microsoft Releases EDR Capabilities for Linux Server

    Trending Tags

    • cybersecurity
    • Cloud Security
    • network security
    • WordPress Security
    • Secure Colocation Facility
  • Linux
    Ubuntu 20.04.2 LTS Re-Released

    Ubuntu 20.04.2 LTS Re-Released Due to OEM Install Bug

    Linux Kernel 5.11

    Linus Torvalds Declares First Linux Kernel 5.11 Release Candidate (RC)

    Major Linux Kernel Update Released to Fix 14 Vulnerabilities

    Major Linux Kernel Update Released to Fix 14 Vulnerabilities

    Linux Kernel 5.8

    Linux Kernel 5.8 Reaches EOL, Users Advised to Upgrade to Linux 5.9 Series

    Oracle Linux 7.9

    Oracle Linux 7.9 Update: Oracle Releases Oracle Linux 7.9

    Red Hat Enterprise Linux 8.3 beta now available

    Red Hat Enterprise Linux 8.3 beta now available

    Trending Tags

    • Linux Kernel
    • Linux Torvalds
    • Oracle Linux latest news
    • Oracle Linux latest update
  • More
    • Big Data
    • Blockchain
    • Games
    • Hardware
    • Software
    • Windows
    • Press Release
No Result
View All Result
Cloud Host News
  • Home
  • Hosting
    NetApp Becomes Technology Partner of DHPA

    NetApp Becomes Technology Partner of DHPA

    Managed WordPress Hosting Provider DreamHost Partners with Lendio

    DreamHost, a Managed WordPress Hosting Provider Partners with Lendio

    The Events Calendar

    Liquid Web Acquires ‘The Events Calendar’ a Popular WordPress Plugin

    HostPapa acquires another Canadian web hosting company

    HostPapa acquires another Canadian web hosting company

    Web.com releases new lineup of Pro Services(Pro SEO and Pro Website)

    Web.com releases new lineup of Pro Services(Pro SEO and Pro Website)

    Loopia Picks EcoDataCenter From Sweden for Sustainable Data Center Services.

    Loopia Picks EcoDataCenter From Sweden for Sustainable Data Center Services.

    Trending Tags

    • Hosting
    • A2 Hosting
    • web hosting
    • Cloud Hosting
    • free hosting
    • DreamHost
  • Cloud
    Bitcoin Plummeted $8000 After Elon Musk's Concerns Over Rally

    Bitcoin Plummeted $8000 After Elon Musk’s Concerns Over Rally

    Red Hat's OpenShift Platform Released on IBM Power Virtual Servers

    Red Hat’s OpenShift Platform Released on IBM Power Virtual Servers

    Amazon Web Services (AWS) Expands into Adelaide, South Australia

    Amazon Web Services (AWS) Expands into Adelaide, South Australia

    Veeam Software Extends Google Cloud Partnership

    Veeam Backup for Google Cloud Platform: Veeam Software Extends Google Cloud Partnership

    Google Launches VM Manager, An Infrastructure Management Tools Suite

    Google Launches VM Manager, An Infrastructure Management Tools Suite

    SUSE Announced The Release of Longhorn 1.1

    SUSE Announced The Release of Longhorn 1.1

    Trending Tags

    • Cloud
    • Private Cloud Hosting
    • Google Cloud Platform
    • Cloud Hosting
    • Google Cloud
  • Network/Internet
    Brave Browser Becomes the First Browser to Integrate IPFS Protocol

    Brave Browser Becomes the First Browser to Integrate IPFS Protocol

    ICANN70 to be Held Online on 22-25 March

    ICANN70 to be Held Online on 22-25 March

    OneWeb Plans to Offer High-Speed Internet in India by Q2 2022

    OneWeb Plans to Offer High-Speed Internet in India by Q2 2022

    Cloudflare and Apple Team Up to Develop New Internet Protocol

    Cloudflare and Apple Team Up to Develop New Internet Protocol

    ZenFi Networks Extends Network Capabilities

    ZenFi Networks Extends Network Capabilities

    Spark and NNNCo agree to trans-Tasman IoT network sharing

    Spark and NNNCo agree to trans-Tasman IoT network sharing

    Trending Tags

    • network security
    • 5G Network
    • Network OS
    • 5G Network Solution
    • Dark Fiber Network
  • Security
    Subscribe to our newsletter for the latest security news right from the security and research industries.

    Microsoft Announced SolarWinds Hackers Downloaded Some Azure, Exchange Source Code

    Microsoft Azure and Canonical Ubuntu Linux Have a User Privacy Issue

    Microsoft Azure and Canonical Ubuntu Linux Have a User Privacy Issue

    Chrome Sync Feature Exploited

    Hackers May Use Malicious Chrome Sync Feature to Steal Your Data

    Google Fixes Zero-day Vulnerability in Chrome 88.0.4324.150

    Google Fixes Zero-day Vulnerability in Chrome 88.0.4324.150

    RiskIQ Releases a Tool That Can Create Phishing Pages In Real-Time

    RiskIQ Releases a Tool That Can Create Phishing Pages In Real-Time

    Microsoft Releases EDR Capabilities for Linux Server

    Microsoft Releases EDR Capabilities for Linux Server

    Trending Tags

    • cybersecurity
    • Cloud Security
    • network security
    • WordPress Security
    • Secure Colocation Facility
  • Linux
    Ubuntu 20.04.2 LTS Re-Released

    Ubuntu 20.04.2 LTS Re-Released Due to OEM Install Bug

    Linux Kernel 5.11

    Linus Torvalds Declares First Linux Kernel 5.11 Release Candidate (RC)

    Major Linux Kernel Update Released to Fix 14 Vulnerabilities

    Major Linux Kernel Update Released to Fix 14 Vulnerabilities

    Linux Kernel 5.8

    Linux Kernel 5.8 Reaches EOL, Users Advised to Upgrade to Linux 5.9 Series

    Oracle Linux 7.9

    Oracle Linux 7.9 Update: Oracle Releases Oracle Linux 7.9

    Red Hat Enterprise Linux 8.3 beta now available

    Red Hat Enterprise Linux 8.3 beta now available

    Trending Tags

    • Linux Kernel
    • Linux Torvalds
    • Oracle Linux latest news
    • Oracle Linux latest update
  • More
    • Big Data
    • Blockchain
    • Games
    • Hardware
    • Software
    • Windows
    • Press Release
No Result
View All Result
Cloud Host News
No Result
View All Result
Home Security

Zerologon Vulnerability: Microsoft says Iranian hackers are exploiting the Zerologon Vulnerability

Sienna Rowley by Sienna Rowley
October 6, 2020
in Security
0 0
0
Zerologon Vulnerability

On Monday, Microsoft stated that Iranian state-sponsored hackers are exploiting the Zerologon Vulnerability in real-world hacking campaigns.

Successful attacks would enable hackers to take over servers which are generally known as domain controllers(DC) that are the heart or centerpieces of several networks. It enables intruders to obtain complete authentication over their targets.

Today in a short tweet Microsoft’s Threat Intelligence Center (MSTIC) stated the observation of the Iranian attacks and Zerologon Vulnerability that have been going on for at least two weeks.

MSTIC has observed activity by the nation-state actor MERCURY using the CVE-2020-1472 exploit (ZeroLogon) in active campaigns over the last 2 weeks. We strongly recommend patching. Microsoft 365 Defender customers can also refer to these detections: https://t.co/ieBj2dox78

— Microsoft Security Intelligence (@MsftSecIntel) October 5, 2020
Microsoft Security Intelligence (Zero Logon Vulnerability)

MSTIC associated the attacks with a group of Iranian hackers that the company claims as MERCURY, but who are more popularly known as their nickname of MuddyWatter.

The group is deemed to be a contractor for the Iranian government working under orders from the Islamic Revolutionary Guard Corps, Iran’s primary intelligence, and military service.

As Per the Microsoft’s Digital Defence Report, the group in past has targeted NGOs (non-governmental organizations), intergovernmental organizations, government humanitarian aid, and human rights organizations.

Nevertheless, Microsoft states that the Mercury’s most recent attack included the targeting of Middle Eastern and Asian entities, with a maximum of the attacks being concentrated on organizations in the telecommunications, government (IT services), and oil industry sectors.

The Windows Server Zerologon Vulnerability

Zerologon Vulnerability is a crucial security flaw that allows attackers to access the domain administrator on successful exploitation. This allows them to take control over the whole domain. the exploiter can change any user’s password and perform or execute any command.

Microsoft is rolling out the patch for Zerologon two stages as it can cause some of the affected devices to encounter authentication issues or problems.

On September 29, Microsoft stated, admins should take preventive steps to protect devices against attacks utilizing Zerologon Vulnerability.

The update plan sketched by Microsoft at the time incorporates the following actions:

  1. UPDATE your Domain Controllers with an update released August 11, 2020, or later.
  2. FIND which devices are making vulnerable connections by monitoring and observing event logs.
  3. ADDRESS non-compliant devices making vulnerable connections.
  4. ENABLE enforcement mode to address CVE-2020-1472 in your environment.

Are you looking for more security updates? Subscribe to our Newsletter for the latest security news and latest cloud hosting news right from the security and research industries. If you have any doubts, queries, or suggestions, please comment below in the comment box.

Download Premium WordPress Themes Free
Free Download WordPress Themes
Premium WordPress Themes Download
Download Premium WordPress Themes Free
online free course
download intex firmware
Download Premium WordPress Themes Free
free download udemy paid course

Oh hi, there 👋 It’s nice to meet you.

Sign up to receive daily news update in your inbox.

We don’t spam! Read our privacy policy for more info.

Check your inbox or spam folder to confirm your subscription.

Tags: CXOData CenterMercuryMicrosoftMicrosoft Security IntelligenceMuddyWater
ShareTweetShare
Previous Post

Bandwidth IG Extends its Dark Fiber Network in Douglas County

Next Post

Chrome 86 release with password-related security enhancements

Sienna Rowley

Sienna Rowley

Sienna is an editor at Cloud Host News. She is an internet enthusiast, always eager to explore the latest trend in the tech space. In her free time, she is a modest family woman who loves traveling.

Related Posts

Subscribe to our newsletter for the latest security news right from the security and research industries.
Security

Microsoft Announced SolarWinds Hackers Downloaded Some Azure, Exchange Source Code

February 19, 2021
Microsoft Azure and Canonical Ubuntu Linux Have a User Privacy Issue
Security

Microsoft Azure and Canonical Ubuntu Linux Have a User Privacy Issue

February 16, 2021
Chrome Sync Feature Exploited
Security

Hackers May Use Malicious Chrome Sync Feature to Steal Your Data

February 9, 2021
Google Fixes Zero-day Vulnerability in Chrome 88.0.4324.150
Security

Google Fixes Zero-day Vulnerability in Chrome 88.0.4324.150

February 5, 2021
RiskIQ Releases a Tool That Can Create Phishing Pages In Real-Time
Security

RiskIQ Releases a Tool That Can Create Phishing Pages In Real-Time

January 29, 2021
Microsoft Releases EDR Capabilities for Linux Server
Security

Microsoft Releases EDR Capabilities for Linux Server

January 13, 2021
SolarWinds Hackers Accessed Microsoft Source Code
Security

SolarWinds Hackers Accessed Microsoft Source Code

January 1, 2021
Atos Announced Accomplishment of SEC Consult Acquisition
Security

Atos Announced Accomplishment of SEC Consult Acquisition

December 23, 2020
Microsoft Released Fix For Windows 10 CHKDSK Bug Which Caused Boot Failures
Security

Microsoft Released Fix For Windows 10 CHKDSK Bug Which Caused Boot Failures

December 22, 2020
Load More
Next Post
Chrome 86 release

Chrome 86 release with password-related security enhancements

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

cheap linux hostingcheap linux hostingcheap linux hosting
ADVERTISEMENT

Follow Us

Trending News

Super Micro Computer Advancing on New Multi-Node GPU Solution

Super Micro Computer Advancing on New Multi-Node GPU Solution

February 24, 2021
Bitcoin Plummeted $8000 After Elon Musk's Concerns Over Rally

Bitcoin Plummeted $8000 After Elon Musk’s Concerns Over Rally

February 23, 2021
Red Hat's OpenShift Platform Released on IBM Power Virtual Servers

Red Hat’s OpenShift Platform Released on IBM Power Virtual Servers

February 23, 2021
Subscribe to our newsletter for the latest security news right from the security and research industries.

Microsoft Announced SolarWinds Hackers Downloaded Some Azure, Exchange Source Code

February 19, 2021
Microsoft Starts Removing Flash Player via Windows Update KB4577586

Microsoft Starts Removing Flash Player via Windows Update KB4577586

February 18, 2021
Cloud Host News

Find the best web hosting news, articles, reviews, tutorials, solution and latest videos related to cloud computing , hosting, security, Linux, domain & more.

Categories

  • Blockchain
  • Cloud
  • Data Centers
  • Games
  • Hardware
  • Hosting
  • Linux
  • Network/Internet
  • Press Release
  • Security
  • Software
  • Windows

Search

No Result
View All Result

Pages

  • About Us
  • Contact Us
  • Deals & Coupons
  • Home
  • Privacy Policy
  • Terms & Conditions

© 2020 Cloudhostnews - Technology News Updates Cloudhostnews. Privacy Policy & Terms & Conditions

No Result
View All Result
  • Home
  • Hosting
  • Cloud
  • Network/Internet
  • Security
  • Linux
  • More
    • Big Data
    • Blockchain
    • Games
    • Hardware
    • Software
    • Windows
    • Press Release

© 2020 Cloudhostnews - Technology News Updates Cloudhostnews. Privacy Policy & Terms & Conditions

Login to your account below

Forgotten Password? Sign Up

Fill the forms bellow to register

All fields are required. Log In

Retrieve your password

Please enter your username or email address to reset your password.

Log In